Two newly disclosed vulnerabilities in 7-Zip could allow attackers to execute arbitrary code by tricking users into opening a ...

Cybersecurity company Imperva, which discovered and reported the problem in July 2025, described CVE-2025-53967 as a "design ...

Overview Recently, NSFOCUS CERT detected that Oracle issued a security bulletin to fix the remote code execution vulnerability (CVE-2025-61882) in Oracle E-Business Suite; Because Oracle Concurrent ...

Trend Micro’s Zero Day Initiative (ZDI) has published 13 advisories describing unpatched vulnerabilities in Ivanti Endpoint ...

Huntress reports active exploitation of Gladinet CVE-2025-11371, exposing system files and enabling remote code execution.

Overview Recently, NSFOCUS CERT detected that Redis issued a security bulletin and fixed the Redis Lua code execution vulnerability (CVE-2025-49844); Because Redis’s Lua script engine has a ...

Now, security researchers found that figma-developer-mpc is vulnerable to a command injection flaw that allows threat actors ...

Three vulnerabilities have been patched in OpenSSL, including one that allows an attacker to recover the private key.

The Redis security team has issued a warning to system administrators and cloud infrastructure providers after discovering a ...

All games running Unity must now be immediately patched due to a new security vulnerability that has been discovered, the ...

Google addressed a use-after-free bug in the WebGL (Web Graphics Library) component of the Google Chrome web browser that could lead to arbitrary code execution in the context of the browser's process ...

Researchers recently discovered a Windows code-execution vulnerability that has the potential to rival EternalBlue, the name of a different Windows security flaw used to detonate WannaCry, the ...